Subject: Review wanted: bulk builds & vulnerabilities list [patch]
To: None <tech-pkg@NetBSD.org>
From: Hubert Feyrer <hubert@feyrer.de>
List: pkgsrc-bulk
Date: 03/20/2005 16:52:00
I found out that the bulk builds still do _not_ automatically update the 
vulerabilities list. The patch below fixes this, it's mostly inspired by 
code from pkgsrc/mk/bulk/upload. It seems to work but I'd prefer review 
before I commit it. Please let me know if I missed anything.


  - Hubert


Index: build
===================================================================
RCS file: /cvsroot/pkgsrc/mk/bulk/build,v
retrieving revision 1.48
diff -u -r1.48 build
--- build	14 Jan 2005 15:32:34 -0000	1.48
+++ build	20 Mar 2005 15:48:43 -0000
@@ -172,6 +172,22 @@
  	  cd ${USR_PKGSRC}/pkgtools/pkg_install && ${BMAKE} clean &&	\
  		${BMAKE} install && ${BMAKE} clean )

+# Make sure the pkg-vulnerabilities file is up to date
+echo "Making sure vulnerability-list is upto date:"
+if [ -z "$UPDATE_VULNERABILITY_LIST" -o "$UPDATE_VULNERABILITY_LIST" = "yes" ]
+then
+	distdir=`cd pkgtools/pkglint ; ${BMAKE} show-var VARNAME=DISTDIR`
+	(cd ${USR_PKGSRC}/security/audit-packages			\
+	 && ${BMAKE} clean 						\
+	 && ${BMAKE} deinstall 						\
+	 && ${BMAKE} install 						\
+	 && ${BMAKE} clean 						\
+	 && env PKGVULNDIR=${distdir} download-vulnerability-list )
+        echo 'done.'
+else 
+        echo '(skipped)'
+fi 
+
  cd ${USR_PKGSRC}



-- 
NetBSD - Free AND Open!      (And of course secure, portable, yadda yadda)